- cross-posted to:
- hackernews@derp.foo
- cross-posted to:
- hackernews@derp.foo
“More than half of the websites in the study accepted passwords with six characters or less, with 75% failing to require the recommended eight-character minimum. Around 12% of had no length requirements, and 30% did not support spaces or special characters.”
- Technus ( @Technus@lemmy.zip ) 28•10 months ago
It’s 2023 and I still see signup forms that are like “must have at least one of each: number, lowercase letter, uppercase character, special character (but not
, . " & / + < > {} []
)”That, plus no single sign-on (privacy issues aside) and login flow design so bad that password managers don’t know what the fuck is going on, and it’s no wonder password security is still a huge issue.
- meseek #2982 ( @ultratiem@lemmy.ca ) 6•10 months ago
My old domain registrar set an 7 character limit, no special characters of any kind. Just numbers and letters. This was back in 2020 🫠
- inetknght ( @inetknght@lemmy.ml ) 8•10 months ago
If a website requires so few characters that I have to create custom rule in my password manager for it… then it’s a website I’m strongly inclined not to use.
Sadly, a lot of these websites deal with finances or employment.
- Pantherina ( @Pantherina@feddit.de ) 3•10 months ago
Paypal lol. Literally my most insecure password
- dhtseany ( @dhtseany@lemmy.ml ) 8•10 months ago
Cool now talk about how shitty banks block auto-fill on their login forms which keeps you from using it with your password managers. Oh, and no, you can’t paste into those fields either cuz “security”.
- Sproux ( @Sproux@lemmy.dbzer0.com ) 4•10 months ago
At least on Firefox, there’s a flag you can change in the browser settings to make it so nobody can disable pasting to text fields. It has made the banking experience a lot more pleasant for me. https://www.howtogeek.com/251807/how-to-enable-pasting-text-on-sites-that-block-it/
- AutomaticJack ( @AutomaticJack@beehaw.org ) 6•10 months ago
I’ve come across a few sites that require one upper case, one number and one symbol (from a short list). Not at least one of each, no no, precisely one of each. One site even forced the password length to be exact -_-
- Snot Flickerman ( @SnotFlickerman@lemmy.blahaj.zone ) English3•10 months ago
Obligatory: “12345? That’s amazing! I’ve got the same combination on my luggage!”